On Friday the 7th, I did the upgrade of four of our appliance IDS sensors. No problem. Afterwards I did the upgrade on the IDS MC and at the next logon, I did't have any access anymore to IDS MC and Security Monitor :
'You are not authorized to request the Action associated with screenID: "/s510"' or 'You are not authorized to request the Action associated with screenID: "/s550"' depending on the screen I want to access.
Now there seems to be an issue with authentication via ACS (TACACS+) in combination with fall-back to CS local authentication. However disabling fall-back or ACS doesn't solve the problem. Before this upgrade we didn't have this problem (of course).
We are talking to our supplier and a case has already been opened, but after a week, we don't have a solution yet.
This is really urgent, because we don't have any access to our events anymore.
The IDS MC still is generating reports and sending emails to us. So it's a pure access problem, I think.
Rather peculiar is that we can't change also the AAA server in the VMS (IDS MC) administration. It always wants to check with a TACACS+ server even if we configured the CS local authentication in the CS security setup.
If you have not done so alreacy, go to
VMS>Administration>Configuration>AAA Server Re-Synchronize and make sure it is set to Cisco Works Local.